Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'GitLab' disclosed a bug submitted by b'joaxcar' 
b'Improper access control for users with expired password, giving the user full access through API and Git'
27 Jan 2022 timeline
b'Zomato' disclosed a bug submitted by b'mosec9' 
b'subdomain takeover on fddkim.zomato.com'
27 Jan 2022 timeline
b'FetLife' disclosed a bug submitted by b'castilho' 
b'Specific Payload makes a Users Posts unavailable'
26 Jan 2022 timeline
b'Lark Technologies' disclosed a bug submitted by b'imran_nisar' 
b'Able to steal private files by manipulating response using Auto Reply function of Lark'
25 Jan 2022 timeline
b'Lark Technologies' disclosed a bug submitted by b'imran_nisar' 
b'Able to steal private files by manipulating response using Compose Email function of Lark'
25 Jan 2022 timeline
b'Mail.ru' disclosed a bug submitted by b'official_dhivish' 
b'Subdomain Takeover'
25 Jan 2022 timeline
b'TikTok' disclosed a bug submitted by b'blubluuu' 
b'Cross site scripting via file upload in subdomain ads.tiktok.com'
25 Jan 2022 timeline
b'Imgur' disclosed a bug submitted by b'blackfly_' 
b'No length on password'
24 Jan 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'chamal' 
b'Buffer Overflow in optimized_escape_html method'
22 Jan 2022 timeline
b'Imgur' disclosed a bug submitted by b'whoami991' 
b'xss reflected on imgur.com'
22 Jan 2022 timeline
b'Weblate' disclosed a bug submitted by b'joshmcman08' 
b'hosted.weblate.org display of unfiltered results'
21 Jan 2022 timeline
b'Stripe' disclosed a bug submitted by b'dk82hg' 
b'Email change or personal data change on the account.'
21 Jan 2022 timeline
b'Recorded Future' disclosed a bug submitted by b'bombon' 
b'[https://app.recordedfuture.com] - Reflected XSS via username parameter '
21 Jan 2022 timeline
b'QIWI' disclosed a bug submitted by b'rivalsec' 
b"disclosing clients' secret keys https://stage-uapi.tochka.com:2000/"
21 Jan 2022 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'tniessen' 
b'Invalid handling of X509_verify_cert() internal errors in libssl (CVE-2021-4044)'
20 Jan 2022 timeline
b'Shopify' disclosed a bug submitted by b'bepresent' 
b'Reflected XSS online-store-git.shopifycloud.com'
20 Jan 2022 timeline
b'Shopify' disclosed a bug submitted by b'mester_x' 
b'Direct Access To admin Dashboard'
20 Jan 2022 timeline
b'Shopify' disclosed a bug submitted by b'nagli' 
b'Stored XSS at https://linkpop.com'
20 Jan 2022 timeline
b'TikTok' disclosed a bug submitted by b'lu3ky-13' 
b'Cross-site Scripting (XSS) - Stored on ads.tiktok.com in Text field'
20 Jan 2022 timeline
b'GitHub Security Lab' disclosed a bug submitted by b'npesaresi' 
b'Yet another SSRF query for Javascript'
19 Jan 2022 timeline
1 ... 139 140 141 142 143 ... 730
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM